Application Security Engineer

Our client is a global leader in the aviation sector, driving a digital-first transformation powered by cloud technologies, data innovation, and machine learning. With a bold vision to redefine how data empowers smarter decisions, they are building a modern engineering ecosystem that fuels business agility and growth at scale.

At the heart of this journey is a vibrant, inclusive, and forward-thinking technology team that thrives on curiosity, collaboration, and continuous learning. From cloud-native architectures to real-time data pipelines, team members are shaping solutions that impact millions of livesall while working in an environment that values diversity, wellbeing, and career development.

The Job

We are Seeking to identify a Security Application Engineer, responsible for developing solutions to automate the security operation, particularly in security control validation. The ideal candidate will have a strong background in AWS cloud services, proficiency in programming and scripting, and experience with CI/CD pipelines and security best practices.

• Work closely with other engineers, analysts, business and systems analysts to define and implement technical solutions to automate security management process
• Provide guidance on industry best practices, guidelines and governance for web applications and web sites.
• Identify areas for modification in existing programs and subsequently developing these modifications. Test and evaluate new programs.
• Write and implement efficient code.
• Help improving quality assurance procedures.
• Maintain and upgrade existing systems.
• Help developing and deploying software tools, processes and metrics.
• Develop pipeline templates, software components or tools to prevent developers from introducing security vulnerabilities.

Your Profile

• An Engineer with 5+ years of experience in application security or software development.
• 3 years of hands-on experience with AWS core services, including EC2, S3, Lambda, CloudWatch, and DynamoDB.
• Strong proficiency in multiple programming language (e.g., Python, JavaScript, Java, .NET) and shell scripting (Bash/PowerShell).
• Proven track record of delivering high-quality code and applications within project timelines.
• 3+ years of experience implementing and maintaining CI/CD pipelines and configuration management tools in multi-account environments.
• Familiarity with Harness and/or GitHub Actions.
• Working knowledge of OWASP Top 10 security risks and their mitigations.
• Experience with security scanning tools such as Wiz, Veracode, or similar platforms.
• Demonstrated ability to remediate security vulnerabilities identified by scanning tools.